Hello, > I am working on TLS Authentication using OpenSSL 0.9.8a. > > When I am trying for Mutual Authentication, the OpenSSL throws "tlsv1 > alert protocol version" followed by "ssl handshake failure". > > Can anybody explain me, what exactly this problem is? > > Log : > > DEBUG-> [Wed Aug 08 12:38:24][../src/eapTLSWrapper.c->352]BIO_read -1 > bytes , errno 0 > ERROR-> [Wed Aug 08 12:38:24][../src/eapTLSWrapper.c->356] > SSL_get_error returned....... 1 > ERROR-> [Wed Aug 08 12:38:24][../src/eapTLSWrapper.c->389] > SSL_get_error returned.......SSL_ERROR_SSL > ERROR-> [Wed Aug 08 12:38:24][../src/eapTLSWrapper.c->393] > SSL_get_error returned.......error:1409442E:SSL > routines:SSL3_READ_BYTES:tlsv1 alert protocol version > ERROR-> [Wed Aug 08 12:38:24][../src/eapTLSWrapper.c->396] > SSL_get_error returned.......error:140940E5:SSL > routines:SSL3_READ_BYTES:ssl handshake failure You may have TLS1 support only in server enabled and default configuration (ssl23) in client. In this case, client connects with SSL2 client_hello packet but server recognizes only TLS1 and we have handshake problem. Try to set the same versions of protocol on both ends. You may also upgrade your OpenSSL to current version which improves slightly this negotiation process.
Best regards, -- Marek Marcola <[EMAIL PROTECTED]> ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
